Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D32DC1C7F0F11EF9C1E7053762E951A.roa
File: 7D32DC1C7F0F11EF9C1E7053762E951A.roa (raw, json)
Hash identifier: 5d2kA+ZsSA2svLE4Zvt6iJxkGQ/ctQmxj24O5Gs1FP4=
Subject key identifier: 7C:B1:60:82:FC:3C:30:80:7C:A3:17:AF:9D:EC:79:BD:81:FA:AF:7E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F5B6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D32DC1C7F0F11EF9C1E7053762E951A.roa
Signing time: Mon 30 Sep 2024 09:36:37 +0000
ROA not before: Mon 30 Sep 2024 09:36:34 +0000
ROA not after: Sat 30 Nov 2024 09:36:34 +0000
asID: 136907
IP address blocks: 154.93.100.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62902 (0xf5b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 30 09:36:34 2024 GMT
Not After : Nov 30 09:36:34 2024 GMT
Subject: CN=66fa7125-ec06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:d2:b2:11:5d:a8:6b:e6:f6:45:33:5c:f5:74:
2b:1b:3f:9e:5e:0e:26:06:21:72:70:af:30:35:f2:
36:47:33:fe:55:29:2b:64:43:72:3b:97:92:1a:fd:
88:70:68:55:5a:57:2b:76:fa:7a:d9:61:94:ef:e3:
82:b9:cb:83:d1:d1:cd:28:3f:dc:a1:c6:2d:38:5a:
a5:2a:e0:0a:f8:fc:c3:08:95:fb:ce:94:b0:a2:22:
fa:19:4e:4e:06:d6:84:44:76:2d:b1:af:88:fb:87:
fd:14:5e:c3:d3:29:bc:98:1b:4b:4f:b7:e9:30:20:
24:bb:fc:49:30:65:1b:63:bb:a8:af:a4:9f:3a:16:
34:82:4b:16:a7:75:e3:94:13:33:47:04:94:e3:2b:
f7:88:ab:69:0a:aa:ab:01:da:7f:78:e2:da:2e:64:
cb:ae:01:30:3a:75:77:d7:f0:5f:48:74:17:0b:c3:
fb:b1:4d:ef:11:57:e0:76:52:17:6d:ae:38:b5:3e:
8f:c1:7c:99:5b:bc:13:f0:90:a8:9e:3f:26:5e:55:
51:5c:08:bb:8e:37:14:46:f4:72:43:11:2c:24:b2:
73:e3:fc:83:56:26:0c:b9:3e:98:a0:8e:4e:c1:ed:
ac:37:23:64:cf:7b:1e:16:5c:35:2a:98:b6:58:3d:
58:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:B1:60:82:FC:3C:30:80:7C:A3:17:AF:9D:EC:79:BD:81:FA:AF:7E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D32DC1C7F0F11EF9C1E7053762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.100.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:96:06:81:26:7c:ba:a9:c9:8a:e7:22:fa:03:2a:7c:ef:21:
7e:54:a9:fc:82:a6:6d:d2:ba:c8:8f:4b:80:05:f7:7f:f8:c0:
94:5b:97:b6:34:34:2d:68:c0:96:26:b9:a1:47:84:39:cf:02:
ab:08:7e:f1:07:e0:4e:d8:81:91:44:e0:45:1e:87:fb:19:47:
67:4a:d3:1a:c8:f7:3e:e0:9d:dd:b9:9d:0e:b5:13:2d:0d:d9:
c3:64:20:56:98:86:d7:7e:5e:42:50:56:2d:d4:74:9d:a6:cb:
27:2a:c3:21:75:91:81:b4:bb:8d:9a:58:68:4a:05:b2:f9:25:
46:7e:e2:f7:ca:55:66:ed:c0:f7:c1:30:43:a0:5e:cc:4e:2e:
14:93:1e:cb:83:a6:a1:a0:b7:88:9f:27:ff:1d:f5:b5:cf:f3:
96:dd:a9:88:88:05:0d:29:c2:58:06:1a:ec:4c:a5:66:8d:ea:
b8:91:b6:f2:13:18:38:79:1c:78:87:f9:08:e0:9f:1a:63:ad:
87:f9:79:8e:20:3d:cb:91:9c:29:a4:d9:0f:c1:df:3a:65:52:
5a:2b:de:de:d9:92:d6:1a:12:34:15:ed:8c:df:49:cb:f1:95:
d0:7d:43:78:67:f8:83:46:1a:c3:14:f2:33:cc:68:34:01:81:
99:8c:71:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:12 2024 by rpki-client on console-fra.rpki-client.org